Date: Thu, 2 Aug 2007 08:53:08 +0200 From: Patrick Proniewski <patpro@patpro.net> To: freebsd-pf@freebsd.org Subject: Re: strange "throttling" issue with pf on xDSL connection Message-ID: <09A5E345-D13D-4F70-B40D-BECB13AD03D2@patpro.net> In-Reply-To: <000701c7d458$068f1780$13ad4680$@Hennessy@nviz.net> References: <DE71F511-8553-401A-A16C-DF4CAA5DA6E3@patpro.net> <001101c7d441$0f61aa10$2e24fe30$@Hennessy@nviz.net> <569F9080-B78F-400B-B3C5-FCA05F04BF80@patpro.net> <000701c7d458$068f1780$13ad4680$@Hennessy@nviz.net>
next in thread | previous in thread | raw e-mail | index | archive | help
On 01 ao=FBt 2007, at 18:21, Greg Hennessy wrote: >> block drop in log quick on $ext_if from $priv_nets to any >> block drop out log quick on $ext_if from any to $priv_nets > > Superfluous, a default block policy should catch these. Well, I've just tried a very light rule set: ext_if =3D "fxp0" int_if =3D "em0" scrub in all nat on $ext_if from 192.168.0.1/24 to any -> $ext_if pass quick log all keep state with this, my transfer rate reaches 700-750 KB/s, so I think there is =20= something wrong with my full rule set. patpro=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?09A5E345-D13D-4F70-B40D-BECB13AD03D2>